Sapphire City: Sideline A - Hacking the SCCDN

[Dr Yes]

>
> *WELCOME TO SAPPHIRE CITY CONSOLDATED DATA NETWORK*
>
> ACCESS LEVEL 0 (GUEST)
>
> PLEASE SELECT DESTINATION NODE
> 1 = SCCDN BASE AUTHENTICATION (ACCESS LEVEL 1)
>


Hmmm, looks like you need to get issued a public key certificate in order to get preliminary access to the network.  Looks like from there you can then try get further access to specific low security systems on the network, and also try get higher levels of access.  Should be easy enough, most likely an automated server response that grants base level protocols and permissions when provided with the right parameters


GC Cue: 1st Hacking dramatic challenge. Lead is 1.  Pick a strategy and roll your skill.  Indicate what advantages you will try for should you win. Also pick a user name (e.g. 'Synth01' or 'Synth@corp.sc' etc

[spinningdice]

Synth looks at the screen, takes a sip of coffee and starts to probe the site for weaknesses.

(click to show/hide)

Start with a 'L337 Moves strategy, Computer Use (1d20+11=20), of course if the DC is less than 24 I can't fail anyway
P.S. user name will be cynthia.smith@corps.com

[Dr Yes]

>
> BASE AUTHENTICATION GRANTED TO: cynthia.smith#corps.com
> PLEASE REFER TO \DOCS AND \PROTOCOL AS REQUIRED
>


Well that seemed easy enough, you didn't even get time to finish your coffee.

Browsing some of the supporting technical material, it appears that the SCCDN is used for real time high volume data sharing between the computer software of different organisations.  While they probably limit what data is available and to who, you feel confident given time you can get access to modify some data and view additional data that is stored alongside data that is shared.  High security levels give access to more source data systems, as well as more data from lower security level data systems.

[Dr Yes]

>
> *WELCOME TO SAPPHIRE CITY CONSOLDATED DATA NETWORK*
>
> AUTHENTICATED USER cynthia.smith#corps.com
> ACCESS LEVEL 1 (FREELANCE USER)
>
> PLEASE SELECT DESTINATION NODE
> 1.1 = SCCDN AUTHENTICATION RATING INCREASE (ACCESS LEVEL 2)
> 1.2 = SAPPHIRE TRANSPORT & DISTRUBUTION (FREIGHT LOCATION, DELIVERY SCHEDULES)
> 1.3 = SAPPHIRE CREDIT AUTHORITY (CREDIT RATINGS / HISTORY)
> 1.4 = SC TELCO-DIRECT (TELECOMUNICATIONS DIRECTORY)
> 1.5 = FREELANCE LEGAL AUTHORITY (PENDING / RESOLVED LEGAL RULINGS AGAINST FREELANCERS)
>


Looks like when you have time all you need to do is pick a node,  decide on your approach and crack it open.
Higher security levels may involve more risk, but you feel pretty confident at this level of hiding amoung the high data volumes and unmonitored audit logs.